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(57) Abstract: The 
invention relates to a method 
for encryption of the content in 
a database, for accomplishing 
increased protection against 
unauthorised access to me data. 
The method assures that every 
row and item is re-encrypted with 
a valid key. More specifically this 
process, the so-called Keylife 
process, is executed every 
time a row is inserted, updated 
or retrieved after a scanning 
operation. The key life value, 
defining the number of days a key 
is valid for each item, could differ 
for the items, and could typically 
be between 30 and 90 days. The 
scanning operation, cheriring 
the validity of the presently 
used keys, me so-called Keylife 
checking, is executed each time 
a new key generation is created. 
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METHOD FOR REENCRYPTION OF A DATABASE 

Tr-i^l ri of t he invention 

The present invention relates to a method for 
enorryption of the content in a database, for 
accomplishing increased protection against unauthorised 
5 access to the data. 

p^rVaround of the invention 

In order to protect information stored in a 
database, it is known to store sensitive data encrypted 

10 in the database. To access such encrypted data you have 
to decrypt it, which could only be done by knowing the 
encryption algorithm and the specific decryption key 
being used. The access to the decryption keys could be 
limited to certain users of the database system, and 

15 further, different users could be given different access 
rights . 

Specifically, it is preferred to use a so-called 
granular security solution for the encryption of 
databases, instead of building walls around servers or 

20 hard drives. In such a solution, which is described in 
the document WO 97/49211 by the same applicant, a 
protective layer of encryption is provided around 
specific sensitive data-items or objects. This prevents 
outside attacks as well as infiltration from within the 

25 server itself. This also allows the system manager to 

define which data stored in databases are sensitive and 
thereby focusing the protection only on the sensitive 
data, which in turn minimizes the delays or burdens on 
the system that may occur from other bulk encryption 

30 methods. 

Most preferably the encryption is made on such a 
basic level as in the column level of the databases. 
Encryption of whole files, tables or databases is not so 
granular, and does thus encrypt even non-sensitive data. 
35 It is further possible to assign different encryption 



WO 01/35226 



PCT/SEOO/02219 



2 

keys of the same algorithm ^to different data columns. 
With multiple keys in place, intruders are prevented from 
gaining full access to any database since a different key 
could protect each column of encrypted data. 
5 However, there are problems with the previously 

known database encryption methods. Especially there is a 
problem to replace the old encryption keys in a 7 days by 
24 hours operational database, since the database has to 
be taken out of operation when keys should be exchanged. 
10 Further, there is a problem accessing data for which the 
encryption keys have been exchanged. 

Summary of the invention 

It is therefore an object of the present invention 
15 to provide a method for encryption of the content in a 

database, for accomplishing increased protection against 
unauthorised access to the data. 

This object is achieved with the method according to 
the appended claims. 

20 

re-r-ief description of the drawings 

For exemplifying purposes, the invention will be 
described in closer detail in the following with 
reference to embodiments thereof illustrated in the 
25 attached drawings, wherein: 

Fig. 1 shows an example of a database system using 
the inventive method. 

Description of preferred embodiments 

30 Referring to fig 1, a database system according to 

the invention is illustrated, comprising at least one 
database 1, at least one security system 2, and at least 
one client 3 . The database is operated through a database 
management system (DBMS) 4, which is a program providing 

35 the mechanisms and functionality for systematic storage 
and retrieval of data from the database. The DBMS could 
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be operated on a convent ipnal personal computer, on a 
microcomputer or the like. 

The security system 2 preferably * comprises an access 
. control enforcement facility (AEF) 21 and an access 
5 control definition facility (ADP) 22 . The ADF provides 
security administration services and the AEF provides 
real-time enforcement of security parameters. The ADF 22 
comprises a management system, Secure .Manager, and a 
memory for storing the ADF policy. ADF, the security 
10 administration services facility, preferably provides a 
complete RBAC facility, which using a drag and drop 
graphical user interface could enable the security 
administrator to create and maintain users, functional 
and organizational roles and their associated access 
15 privileges. The AEF 21 comprises a management system, 

» Secure. Server " , and a memory for storing the ADF policy. 
AEF, the security enforcement services facility, is 
central to the architecture of the inventive method. In 
general it should receive security policy (and updates) 
20 via secure transmission from ADF. Further, it controls 
real-time access to all protected elements of the 
database 1 at the appropriate granularity. 

The security system 2 could be operated on a 
conventional personal computer, on a microcomputer or the 
25 like. Further, it could be operated on the same computer 
as the DBMS, or on a separate computer connected to the 
DBMS computer by a data network. 

In the database according to the invention a 
granular security solution is used, where the items of 
30 the database is individually encrypted. Further, 

information about the encryption keys used for the 
specific database item are stored in association with the 
item. Most preferably the encryption is made on such a 
basic level as in the column level of the databases. It 
35 is further possible to assign different encryption keys 
of the same algorithm to different data columns. With 
multiple keys in place, intruders are prevented from 
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gaining full access to any -database since each column of 
encrypted data is protected by a different key. 

The information about the encryption keys stored in 
association with the database items, e.g. database rows, 
5 could be provided by storage of a hash value of the 

encryption key together with the encrypted data for each 
row - 

The data for each row and column is preferably 
stored together with an encryption key generation 

10 counter. The data for each row and column can be 

concatenated with the encryption key generation counter. 

The databases could e.g. be Oracle 8.0.5 or Informix 
9^4, but several other commercially available databases 
are possible to use for the inventive method. The 

15 platforms for the database system could e.g. be NT, HP- 
UX, Sun Solaris or AIX. The encryption algorithm used by 
the invention could e.g. be DES, and both software and 
hardware encryption could be used. More generally, the 
encryption used by the invention may concern any form of 

20 encryption, and is especially to concern methods of 
conversion including hashing. 

According to the inventive method the encryption 
keys are replaced and updated automatically. This is 
achieved by defining a length of a time period to be 

25 used, deciding, for each time period at least one 

encryption key to be used when entering new database 
items to the database is decided, associating each 
encryption key with a life time value, and indicating the 
number of time periods during which the key will be 

30 valid. Hereby it is possible to scan the database to 

discover items with no longer valid encryption keys and 
replace such discovered invalid keys with keys assigned 
to the current time period. 

Thus, the database reencrypt feature is based on 

35 multiple active keys and a timestamp for the last update 
time associated, preferably as a column or part of a data 
column, with each row or data item. Each key is 
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preferably unique for each item and generation of keys, 
i.e. keys generated during the same period. For example, 
the period P could be a week, whereby* the key generation 
for week one in year 1999 could be identified as 199901, 
5 A new key generation is generated when a new period P 
starts. 

Each key has a specific lifetime value L, stored in 
the database for the security system, i.e. the number of 
time periods during which the key is valid. The lifetime 

10 could vary between different keys. 

The table of historic keys is preferably stored in 
the database for the security system. Storing the old 
keys enables decryption of historic generations of data. 
Further, each item or row in the database comprises 

15 a timestamp indicating when it was last updated. Each row 
may contain columns encrypted with potentially different 
key generations. 

When new items are entered into to the database for 
the current time period P is used, and for reading items 

2 0 from the database data is decrypted with the matching key 
of the active keys. When a new period is entered a key 
scan operation is started, preferably as a background 
process started. In this operation no longer valid keys 
are replaced by presently active keys. The key scan 

25 operation need not be started immediately after entering 
the new period, but is preferably executed as soon after 
the entrance as possible. 

Example of an operational scenario 
30 The method according to the invention will now be 

further described by way of an operational scenario. The 
time period P is here decided to be one week. Each row 
has a timestamp (week) for last update. Each key have a 
life time of L (weeks) . A column CI in the database could 
35 e.g. have the structure: 



Column CI 
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Data. 


Value A and encryption key generation 


counter 


Data 


Value B and encryption key generation 


counter 


Data 


Value C and encryption key generation 


counter 



For an object II the key life L is decided to 2 
weeks. Hence, after two weeks the active keys for object 
II will be from both key generation 1 and 2, If 
5 application data C is input to item 1 during week 1 and A 
and B during week 2 we will therefore have the following 
situation: 



Column CI 


TimeStatnp 
(week) 


KeyGen 


A 


2 


2 


B 


2 


2 


C 


1 


1 



10 When week 3 starts key generation 3 is created, and the 
table of active key generations for object II will now 
contain key generations 3 and 2. The table of historic 
keys for item 1 will contain key generation 1. At this 
time the application data of the first row in column CI 

15 is updated, and the newly stored data will be encrypted 
by a key from the current key generation 3, whereby the 
following situation is achieved: 



Column CI 


TimeStamp 
(week) 


KeyGen 


A 


3 


3 


B 


1 


2 


C 


1 


1 



20 

However, the key scanning operation started at the 
beginning of period 3 will discover that the presence of 
a now non-valid key generation 1 for row C, and this key 
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will therefore be updated, providing the following 
situation: 



Column Cl 


TimeStamp 
(week) 


KeyGen 


AA 


3 


3 


B 


2 


2 


C 


3 


3 



5 When week 4 starts key generation 4 is created. The table 
of active key generations for object II will now comprise 
key generations 4 and 3, while the table of historic keys 
will comprise the key generations 2 and 1. 

The application data after the key scanning 
10 operation and updating will be: 



Column Cl 


TimeStamp 
(week) 


KeyGen 


AA 


3 


3 


B 


4 


4 


C 


3 


3 



When week 5 starts the key life L for II is changed to 1 
week. Further, key generation 5 is created. Due to the 

15 shorter key life, the table of active keys for item 1 

will now only contain key generation 5, and the table of 
historic keys at the same time contain the Icey 
generations 4, 3, 2 and 1. After the key scanning and 
updating operations the application data situation for 

20 object II will be as follows: 



Column Cl 


TimeStamp 
(week) 


KeyGen 


AA 


5 


5 . 


B 


5 


5 


C 


5 


5 
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When week 6 starts key generation 6 is created, and the 
table of active keys for item 1 will now contain key 
generation 6, and the table of historic keys the key 
generations 5, 4, 3, 2 and 1. If the item in the second 
5 row, B, is now updated the following situation will be 
achieved: 



Column CI 


TimeS tamp 
(week) 


KeyGen 


AA 


5 


5 


BB 


6 


6 


C 


5' 


5 



However, after the key scanning and updating operation 
10 they keys for AA and C will be replaced to key generation 
6 as well. 

Conclusion 

In conclusion, the inventive method assures that 

15 every row and item is re-encrypted with a valid key. More 
specifically this process, the so-called KeyLife process, 
is executed every time a row is inserted, updated or 
retrieved after a scanning operation. The key life value, 
defining the number of days a key is valid for each item, 

20 could differ for the items, and could typically be 

between 3 0 and 90 days. The scanning operation, checking 
the validity of the presently used keys, the so called 
KeyLife checking, is executed each time a new key 
generation is created. 

25 We have now described the invention by means of a 

preferred method. However, several alternatives are 
possible and feasible. For example, the database items 
may have different sizes and structure, the inventive 
method may be operated on a single computer or on a 

30 computer network, different types of encryption may be 
used, different lifetimes for the keys may be set, etc. 
Such modifications must be considered to be within the 
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scope of the present invention, as it is defined by the 
enclosed claims. 
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CIiAIMS 

1. A method for encryption of the content in a 
database, comprising the steps of: 

5 deciding the length of a time period to be used by the 

encryption method ; 

for each time period generating at least one 
encryption key to be used when entering new database 
items to the database; 
10 storing information about the encryption key used for 

entering new items in the database in association with 
the item; 

associating each encryption key with a life time 
value, indicating the number of time periods during which 
15 the key will be valid; 

after entering a new time period, scanning the 
database to discover items with no longer valid 
encryption keys; and 

replacing such discovered invalid keys with keys 
20 assigned to the current time period. 

2 . A method according to claim 1 , wherein the items 
comprises rows in the database, each row comprising a 
column with information about the associated encryption 
key, 

25 3, A method according to claim 1 or 2, wherein a 

specific lifetime value is associated with each item. 

4 . A method according to any one of the preceding 
claims, comprising the additional step of storing the 
replaced keys. 

30 5. A method according to any one of the preceding 

claims, whereby the scanning of the database is performed 

as a background process . 

6 . A method according to any one of the preceding 

claims, whereby the scanning of the database is commenced 
35 and performed automatically after entering a new time 

period . 
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7 . A method according -to any one of the preceding 
claims, comprising the additional step of associating the 
items in the database with a timestamp indicating when it 
was last updated. 
5 8 . A method according to any one of the preceding 

claims, comprising the additional step of replacing the 
encryption key for an database item with a key generated 
for the present time period when the database item is 
updated. 

10 9. A method according to any one of the preceding 

claims, wherein the keys are valid between 30 and 90 
days . 

10. A method according to any one of the preceding 
claims, wherein information about the encryption key used 

15 is stored as a hash value of the encryption key used, 

together with the encrypted data, in the database item. 

11. A method according to any one of the preceding 
claims, wherein a value indicating the generation of the 
encryption key used for encrypting the database item is 

20 stored together with the encrypted data in the database 
item. 
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